Lucene search
OracleLinuxELSA-2023-13028HistoryDec 07, 2023 - 12:00 a.m.
olcne security update
2023-12-0700:00:00
linux.oracle.com
26
olcne
cri-o
cri-tools
etcd
flannel-cni-plugin
helm
istio
kata
kubernetes
yq
security
update
cve-2023-39325
cve-2023-44487
arm
oracle linux 9
bump up version
linux team
build requirement
support arm build
ol9 support
timestamp issue
kvm_utils
qemu-kvm
container-registry
metallb
externalip-webhook
multus-cni
rook
istio
grafana
prometheus
kubernetes-dashboard
golang
configmap-registry
kubevirt
calico image versions
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
7.8
Confidence
High
EPSS
0.816
Percentile
98.4%
conmon
[2.1.3-7]
- Resolve CVE-2023-39325
[2.1.3-6] - Add ol8_baseos_latest, and ol9_baseos_latest, to Jenkinsfile
[2.1.3-5] - Add systemd-devel as build requirement
[2.1.3-4] - Add support ARM build
[2.1.3.3] - Add OL9 support
[2.1.3.2] - Update inline with Linux team building conmon for all but OL7.
cri-o
[1.25.2-3] - Resolve CVE-2023-39325
cri-tools
[1.25.0-2] - Resolve CVE-2023-39325
etcd
[3.5.9-2] - Bump up version
[3.5.9-1] - Added Oracle specific build files
flannel-cni-plugin
[1.0.1-3] - Resolve CVE-2023-44487 and CVE-2023-39325
helm
[3.11.1-2] - address CVE-2023-44487 and CVE-2023-39325
istio
kata
[1.12.1-14] - Updated to address CVE-2023-44487 and CVE-2023-39325
[1.12.1-13] - Rebuild kata to fix timestamp issue
[1.12.1-12] - Add support for ARM build
[1.12.1-11] - Add OL9 support
[1.12.1-10] - Updated kata-runtime version to work with more versions of kvm_utils
kata-agent
[1.12.1-9] - Updated to address CVE-2023-44487 and CVE-2023-39325
[1.12.1-8] - Remove build_date global variable in kata-image specfile
[1.12.1-7] - Add support for ARM build
[1.12.1-6] - Add OL9 support
kata-image
[1.12.1-9] - Updated to address CVE-2023-44487 and CVE-2023-39325
[1.12.1-8] - Remove build_date global variable in specfile
[1.12.1-7] - Add support for ARM build
[1.12.1-6] - Restore OL7 and bump release
[1.12.1-5] - Add support for Oracle Linux 9
[1.12.1-4] - build for kata-agent-1.12.1-4
kata-ksm-throttler
[1.12.1-9] - Updated to address CVE-2023-44487 and CVE-2023-39325
[1.12.1-8] - Bump release inline with other kata packages for fixing timestamp issue
[1.12.1-7] - Add support for ARM build
[1.12.1-6] - Bump releaase inline with others for reversion of removal of OL7.
[1.12.1-5] - Add support for Oracle Linux 9
kata-proxy
[1.12.1-9] - Updated to address CVE-2023-44487 and CVE-2023-39325
[1.12.1-8] - Bump release inline with other kata packages for fixing timestamp issue
[1.12.1-7] - Add support for ARM build
[1.12.1-6] - Revert OL7 removal
[1.12.1-5] - Add support for Oracle Linux 9
kata-runtime
[1.12.1-9] - Updated to address CVE-2023-44487 and CVE-2023-39325
[1.12.1-8] - Bump release inline with other kata packages for fixing timestamp issue
[1.12.1-7] - Add support for ARM build
[1.12.1-6] - Add OL9 support
[1.12.1-5] - Updated qemu-kvm machine options to work with more versions of kvm_utils
kata-shim
[1.12.1-9] - Updated to address CVE-2023-44487 and CVE-2023-39325
[1.12.1-8] - Bump release inline with other kata packages for fixing timestamp issue
[1.12.1-7] - Add support for ARM build
[1.12.1-6] - Bump releaase inline with others for reversion of removal of OL7.
[1.12.1-5] - Add support for Oracle Linux 9
kubernetes
kubernetes-cni
[1.0.1-3] - Resolve CVE-2023-44487 and CVE-2023-39325
kubernetes-cni-plugins
[1.0.1-4] - Resolve CVE-2023-44487 and CVE-2023-39325
olcne
[1.6.5-9] - Mark container-registry as updatable
[1.6.5-9] - update metallb 0.12.1 to address CVE-2023-44487 and CVE-2023-39325
[1.6.5-8] - Update externalip-webhook 1.0.0-3 to address CVE-2023-44487, CVE-2023-39325
[1.6.5-7] - Update multus-cni 3.9.3 to address CVE-2023-44487 and CVE-2023-39325
[1.6.5-6] - Update rook-1.10.9 to address CVE-2023-44487, CVE-2023-39325
[1.6.5-5] - Update Istio, Grafana, Prometheus, and Kubernetes-dashboard to address CVE’s
- CVE-2023-44487
- CVE-2023-39325
[1.6.5-4] - Update kubernetes and components to address golang CVE-2023-44487, CVE-2023-39325
[1.6.5-3] - update configmap-registry to 1.28.0 to address CVE-2023-44487 and CVE-2023-39325
[1.6.5-2] - Update kubevirt 0.58.0 to address CVE-2023-44487 and CVE-2023-39325
[1.6.5-1] - Update calico image versions to address golang CVE-2023-44487, CVE-2023-39325
yq
[4.34.1-3] - address CVE-2023-44487 and CVE-2023-3932A
[4.34.1-2] - Add support for ARM build
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| oracle linux | 8 | src | conmon | < 2.1.3-7.el8 | conmon-2.1.3-7.el8.src.rpm |
| oracle linux | 8 | src | cri-o | < 1.25.2-3.el8 | cri-o-1.25.2-3.el8.src.rpm |
| oracle linux | 8 | src | cri-tools | < 1.25.0-2.el8 | cri-tools-1.25.0-2.el8.src.rpm |
| oracle linux | 8 | src | etcd | < 3.5.9-2.el8 | etcd-3.5.9-2.el8.src.rpm |
| oracle linux | 8 | src | flannel-cni-plugin | < 1.0.1-3.el8 | flannel-cni-plugin-1.0.1-3.el8.src.rpm |
| oracle linux | 8 | src | helm | < 3.11.1-2.el8 | helm-3.11.1-2.el8.src.rpm |
| oracle linux | 8 | src | istio | < 1.16.7-2.el8 | istio-1.16.7-2.el8.src.rpm |
| oracle linux | 8 | src | kata | < 1.12.1-14.el8 | kata-1.12.1-14.el8.src.rpm |
| oracle linux | 8 | src | kata-agent | < 1.12.1-9.el8 | kata-agent-1.12.1-9.el8.src.rpm |
| oracle linux | 8 | src | kata-image | < 1.12.1-9.9.ol8_202311161805 | kata-image-1.12.1-9.9.ol8_202311161805.src.rpm |
Related
osv
osv
Traefik vulnerable to HTTP/2 request causing denial of service
2023-10-17 02:37:42
Important: go-toolset:rhel8 security update
2023-10-24 18:35:47
Important: go-toolset:rhel8 security update
2023-10-16 00:00:00
nessus
nessus
AlmaLinux 8 : go-toolset:rhel8 (ALSA-2023:5721)
2023-10-17 00:00:00
Oracle Linux 8 : go-toolset:ol8 (ELSA-2023-5721)
2023-10-18 00:00:00
RHEL 9 : grafana (RHSA-2023:5867)
2023-10-19 00:00:00
redhat
redhat
almalinux
almalinux
Moderate: grafana security update
2023-10-18 00:00:00
Moderate: grafana security update
2023-10-18 00:00:00
Important: go-toolset:rhel8 security update
2023-10-16 00:00:00
openvas
openvas
openSUSE: Security Advisory for go1.21 (SUSE-SU-2023:4069-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for go1.20 (SUSE-SU-2023:4068-1)
2024-03-04 00:00:00
Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2024-1058)
2024-01-09 00:00:00
redhatcve
redhatcve
oraclelinux
oraclelinux
go-toolset:ol8 security update
2023-10-18 00:00:00
conmon security update
2023-12-19 00:00:00
conmon security update
2023-12-19 00:00:00
freebsd
freebsd
traefik -- Resource exhaustion by malicious HTTP/2 client
2023-10-10 00:00:00
rocky
rocky
grafana security update
2023-10-24 18:35:47
go-toolset:rhel8 security update
2023-10-24 18:35:47
toolbox security update
2023-11-11 23:00:15
ubuntucve
ubuntucve
CVE-2023-44487
2023-10-10 00:00:00
CVE-2024-4438
2024-05-08 00:00:00
ibm
ibm
Security Bulletin: IBM DataPower Gateway vulnerable to HTTP/2 "Rapid Reset" Denial of Service (CVE-2023-44487, CVE-2023-39325)
2023-10-26 17:35:42
github
github
Traefik vulnerable to HTTP/2 request causing denial of service
2023-10-17 02:37:42
amazon
amazon
Important: golang
2023-10-16 13:45:00
Important: golang
2023-10-16 13:45:00
cve
cve
CVE-2024-4438
2024-05-08 09:15:09
CVE-2023-6596
2024-04-25 16:15:10
cvelist
cvelist
vulnrichment
vulnrichment
fedora
fedora
[SECURITY] Fedora 37 Update: golang-1.20.10-3.fc37
2023-10-29 01:47:29
[SECURITY] Fedora 39 Update: golang-1.21.3-1.fc39
2023-11-03 19:02:38
[SECURITY] Fedora 38 Update: golang-1.20.10-2.fc38
2023-10-29 01:34:45
nvd
nvd
CVE-2024-4438
2024-05-08 09:15:09
CVE-2023-6596
2024-04-25 16:15:10
redos
redos
ROS-20240826-01
2024-08-26 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
7.8
Confidence
High
EPSS
0.816
Percentile
98.4%
Related for ELSA-2023-13028